Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.MANDRIVA_MDVSA-2014-076.NASL
HistoryApr 11, 2014 - 12:00 a.m.

Mandriva Linux Security Advisory : a2ps (MDVSA-2014:076)

2014-04-1100:00:00
This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
6
JSON

Updated a2ps packages fix security vulnerability :

Brian M. Carlson reported that a2ps’s fixps script does not invoke gs with the -dSAFER option. Consequently executing fixps on a malicious PostScript file could result in files being deleted or arbitrary commands being executed with the privileges of the user running fixps (CVE-2014-0466).

#%NASL_MIN_LEVEL 70300

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Mandriva Linux Security Advisory MDVSA-2014:076. 
# The text itself is copyright (C) Mandriva S.A.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(73467);
  script_version("1.5");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");

  script_cve_id("CVE-2014-0466");
  script_bugtraq_id(66660);
  script_xref(name:"MDVSA", value:"2014:076");

  script_name(english:"Mandriva Linux Security Advisory : a2ps (MDVSA-2014:076)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Mandriva Linux host is missing one or more security
updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Updated a2ps packages fix security vulnerability :

Brian M. Carlson reported that a2ps's fixps script does not invoke gs
with the -dSAFER option. Consequently executing fixps on a malicious
PostScript file could result in files being deleted or arbitrary
commands being executed with the privileges of the user running fixps
(CVE-2014-0466)."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://advisories.mageia.org/MGASA-2014-0161.html"
  );
  script_set_attribute(
    attribute:"solution", 
    value:
"Update the affected a2ps, a2ps-devel and / or a2ps-static-devel
packages."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:ND");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:a2ps");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:a2ps-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:a2ps-static-devel");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:mandriva:business_server:1");

  script_set_attribute(attribute:"patch_publication_date", value:"2014/04/10");
  script_set_attribute(attribute:"plugin_publication_date", value:"2014/04/11");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Mandriva Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/Mandrake/release", "Host/Mandrake/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Mandrake/release")) audit(AUDIT_OS_NOT, "Mandriva / Mandake Linux");
if (!get_kb_item("Host/Mandrake/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^(amd64|i[3-6]86|x86_64)$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Mandriva / Mandrake Linux", cpu);


flag = 0;
if (rpm_check(release:"MDK-MBS1", cpu:"x86_64", reference:"a2ps-4.14-13.1.mbs1")) flag++;
if (rpm_check(release:"MDK-MBS1", cpu:"x86_64", reference:"a2ps-devel-4.14-13.1.mbs1")) flag++;
if (rpm_check(release:"MDK-MBS1", cpu:"x86_64", reference:"a2ps-static-devel-4.14-13.1.mbs1")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
mandrivalinuxa2psp-cpe:/a:mandriva:linux:a2ps
mandrivalinuxa2ps-develp-cpe:/a:mandriva:linux:a2ps-devel
mandrivalinuxa2ps-static-develp-cpe:/a:mandriva:linux:a2ps-static-devel
mandrivabusiness_server1cpe:/o:mandriva:business_server:1

Related

seebug 1
nessus 6
gentoo 1
alpinelinux 1
fedora 2
debiancve 1
openvas 8
prion 1
cve 1
mageia 1
ubuntucve 1
cvelist 1
securityvulns 2
debian 2
osv 1
archlinux 1
seebug
seebug
GNU a2ps任意命令执行漏洞
2014-04-14 00:00:00
nessus
nessus
Fedora 19 : a2ps-4.14-23.fc19 (2014-4676)
2014-05-09 00:00:00
GLSA-201701-67 : a2ps: Arbitrary code execution
2017-01-30 00:00:00
Fedora 20 : a2ps-4.14-23.fc20 (2014-4691)
2014-05-09 00:00:00
gentoo
gentoo
a2ps: Arbitrary code execution
2017-01-29 00:00:00
alpinelinux
alpinelinux
CVE-2014-0466
2014-04-03 16:15:00
fedora
fedora
[SECURITY] Fedora 20 Update: a2ps-4.14-23.fc20
2014-05-08 09:58:57
[SECURITY] Fedora 19 Update: a2ps-4.14-23.fc19
2014-05-08 10:18:21
debiancve
debiancve
CVE-2014-0466
2014-04-03 16:15:00
openvas
openvas
Mageia: Security Advisory (MGASA-2014-0161)
2022-01-28 00:00:00
SUSE: Security Advisory (SUSE-SU-2014:0581-1)
2021-06-09 00:00:00
Fedora Update for a2ps FEDORA-2014-4676
2014-05-12 00:00:00
prion
prion
Design/Logic Flaw
2014-04-03 16:15:00
cve
cve
CVE-2014-0466
2014-04-03 16:15:00
mageia
mageia
Updated a2ps packages fix CVE-2014-0466
2014-04-04 14:58:23
ubuntucve
ubuntucve
CVE-2014-0466
2014-04-03 00:00:00
cvelist
cvelist
CVE-2014-0466
2014-04-03 15:00:00
securityvulns
securityvulns
a2ps code execution
2014-04-07 00:00:00
[SECURITY] [DSA 2892-1] a2ps security update
2014-04-07 00:00:00
debian
debian
[SECURITY] [DSA 2892-1] a2ps security update
2014-03-31 18:46:34
[SECURITY] [DSA 2892-1] a2ps security update
2014-03-31 18:46:17
osv
osv
a2ps - security update
2014-03-31 00:00:00
archlinux
archlinux
[ASA-202005-4] a2ps: multiple issues
2020-05-06 00:00:00
JSON
Related for MANDRIVA_MDVSA-2014-076.NASL
seebug1nessus6gentoo1alpinelinux1fedora2debiancve1openvas8prion1cve1mageia1ubuntucve1cvelist1securityvulns2debian2osv1archlinux1